POU9-2001-0012US1 



Claims : 

What is claimed is: 



1 1. A method for providing security in a partitioned processing 

2 system having a first partition which includes a common security 

3 server and a second partition which includes a security client, 

4 the method comprising the steps of: 

5 a) sending a request for authorization by a user to the 

6 security client in said second partition; 

7 b) transmitting the request for authorization from the 

8 security client to the common security server in the first 

9 partition; 

iM c) transmitting a first response to the request for 

lji authorization from the common security server in the first 

lIP partition to the security client in the second partition said 

IJt transmition of one of said request or said first response between 

1W partitions being by way of main storage; and, 

ll5 d) transmitting a second response from the security client 

3§ to the user. 

lUij 

ijf; 2 . The method for providing security in a partitioned processing 

%k system of claim 1, wherein transmitting the request for 

3 authorization of step b comprises the further steps of: 

4 bl) signaling by the security client running in the second 

5 partition, a first program running in the first partition to 

6 start a proxy client in the first partition; and, 

7 b2) transmitting the request from the proxy client to the 

8 security server in the first partition. 
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1 3. The method for providing security in a partitioned processing 

2 system of claim 1, wherein one of step b or step c includes using 

3 main storage shared between the first partition and the second 

4 partition. 

1 4. The method for providing security in a partitioned processing 

2 system of claim 1, wherein one of step b or step c includes using 

3 main storage linked between the first partition and the second 

4 partition by a memory-to-memory data mover. 

1 5. The method for providing security in a partitioned processing 

2 system of claim 1, wherein step b includes a program call by the 

3 proxy client using an interface native to the security server. 

J 6. The method for providing security in a partitioned processing 

Ui system of claim 1, wherein step c comprises the further step of 

1: transmitting the first response from the common security server 

Ci to the security client by way of a first program running in the 

W first partition. 

I :: | 

|j 7 * The method for providing security in a partitioned processing 
system of claim 1, wherein said second response transmitted from 

|: the security client in the second partition to the user is a 

4 program action. 
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1 8. A partitioned processing system for providing security having 

2 a first partition including a common security server and a second 

3 partition having a security client, the partitioned processing 

4 system comprising: 

5 means for sending a request for authorization by a user to 

6 the security client in the second partition; 

7 means for transmitting the request for authorization from 

8 the security client to the common security server in the first 

9 partition; 

10 Means for transmitting a first response to the request for 

11 authorization from the common security server in the first 

12 partition to the security client in the second partition said 

13 transmition of one of said request or said first response between 
111 partitions being by way of main storage; and, 

d) means for transmitting a second response from the 

111 security client to the user. 

lO 9. The partitioned processing system of claim 8, wherein the 

i w means for transmitting the request for authorization further 

XI comprises : 

4*£ a first program running in the first partition for starting 

3B a proxy client; 

fju means for signaling said first program by the security 

7 client running in the second partition thereby starting said 

8 proxy client in the first partition; and, 

9 means for transmitting the request from the proxy client to 

10 the security server in the first partition ♦ 

1 10. The partitioned processing system of claim 8, wherein said 

2 main storage comprises storage shared between the first partition 

3 and the second partition. 



-40- 



POU9-2001-0012US1 



1 11. The partitioned processing system of claim 8 further 

2 comprising storage linked between the first partition and the 

3 second partition, and said the means for transmitting the request 

4 for authorization from the security client includes a 

5 memory-to-memory data mover. 

1 12. The partitioned processing system of claim 8, wherein the 

2 means for transmitting the request from the proxy client includes 

3 means for sending a program call by the proxy client using an 

4 interface native to the security server. 

1 13. The partitioned processing system of claim 8, wherein the 

2 means for transmitting a response to the request for 

3Q authorization from the common security server further comprises a 

4S first program running in the first partition transmitting the 

SU response from the common security server to the security client. 

14. A computer program product comprising a computer useable 

Z medium having computer readable program code means therein for 

jUJ providing security in a partitioned processing system wherein a 

#§ first partition includes a common security server and a second 

partition including a security client, the computer readable 

C:, program means in said computer program product comprising: 

7 a) computer readable program means for sending a request for 

8 authorization by a user to the security client in the second 

9 partition; 

10 b) computer readable program means for transmitting the 

11 request for authorization from the security client to the common 

12 security server in the first partition; 

13 c) computer readable program means for transmitting a first 

14 response to the request for authorization from the common 

15 security server in the first partition to the security client in 

16 the second partition said transmition of one of said request or 
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17 said first response between partitions being by way of main 

18 storage; and, 

19 d) computer readable program means for transmitting a second 

20 response from the security client to the user. 

1 15* The computer program product for providing security in a 

2 partitioned processing system of claim 14, wherein the computer 

3 readable program means for transmitting the request for 

4 authorization comprises: 

5 bl) computer readable program means for signaling by the 

6 security client running in the second partition, a first program 

7 running in the first partition to start a proxy client in the 

8 first partition; and, 

b2) computer readable program means for transmitting the 

l|| request from the proxy client to the security server in the first 

lp# partition. 

ljf 16. The computer program product for providing security in a 

X partitioned processing system of claim 14, wherein the computer 

3M readable program means of step b or c includes computer program 

4~;;| means using storage shared between the first partition and the 

Bff one of the at least one second partition. 

1 17 . The computer program product for providing security in a 

2 partitioned processing system of claim 14, wherein the computer 

3 readable program means of step b or c includes computer program 

4 means for using storage linked between the first partition and 

5 the one of the at least one second partition by a 

6 memory-to-memory data mover. 
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1 18. The computer program product for providing security in a 

2 partitioned processing system of claim 14, wherein the computer 

3 readable program means of step b includes computer program means 

4 for providing a program call by the proxy client using an 

5 interface native to the security server. 

1 19 . The computer program product for providing security in a 

2 partitioned processing system of claim 14, wherein the computer 

3 readable program means of step c comprises computer readable 

4 program means for transmitting the response from the common 

5 security server to the security client by way of a first program 

6 running in the first partition. 

1^ 20. A partitioned processing system for providing security having 

2gi a first partition including a common security server and a second 

partition having a security client, the partitioned processing 

4s system comprising: 

Sjjf main storage having a first portion accessible by the first 

| partition and a second portion accessible by the second 
partition; 

811 a mechanism connected to the security client, said mechanism 

if sending a request for authorization by a user to the security 

%k client; 

11 a first transmitter in the security client sending the 

12 request for authorization from the security client to the common 

13 security server; 

14 a second transmitter in the common security server sending a 

15 first response to the request for authorization from the common 

16 security server in the first partition to the security client in 

17 the second partition said transmition of one of said request or 

18 said first response between partitions being by way of main 

19 storage; and, 
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2 0 a third transmitter in the common security server sending a 

21 second response from the security client to the user. 

1 21. The partitioned processing system of claim 20, wherein said 

2 first transmitter comprises: 

3 a program running in the first partition for starting a 

4 proxy client; 

5 said security client signaling said program thereby starting 

6 said proxy client in the first partition; and, 

7 a forth transmitter transmitting the request from the proxy 

8 client to the security server. 

1 22. The partitioned processing system of claim 20, wherein said 
2P main storage comprises a third portion accessible by both the 
3^-: first partition and the second partition. 

ij- 23. The partitioned processing system of claim 20 further 

2d comprising storage linked between the first partition and the 

X" second partition, and said second transmitter includes a 

4P memory-to-memory data mover moving data between said first 

3^ portion and second portion of said main memory. 

24. The partitioned processing system of claim 20, wherein said 

2 forth transmitter sends a program call by the proxy client using 

3 an interface native to the security server. 

1 25. The partitioned processing system of claim 20, wherein said 

2 second transmitter further comprises a program running in the 

3 first partition transmitting the first response from the common 

4 security server to the security client. 
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1 26. The partitioned processing system of claim 20 further 

2 comprising a third partition having a second security client, and 

3 said common security server of said first partition being 

4 responsive to requests for authorization from the security client 

5 of the second partition or the second security client of the 

6 third partition. 
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